$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa File: 9eae2235-8723-4a71-a528-d691924c22e1.roa (raw, json) Hash identifier: 2T/uZoo5U7UKrg+QnFo3GN8ciVZ3lZCTbzVvpq2S2zQ= Subject key identifier: DE:2F:A9:09:01:12:29:CE:DD:5A:2F:6D:F5:7D:5E:E6:63:65:2D:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76C127040E10A9BF8A2DF5013F981FD60812F34D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 162.208.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c1:27:04:0e:10:a9:bf:8a:2d:f5:01:3f:98:1f:d6:08:12:f3:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=bf7b1c55d5606a3913d1042d9f803ea8dbface52823537793d6b79978e34d8cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a6:f8:4b:b5:7b:12:ce:1a:58:da:67:98:8c: 49:42:37:17:22:6b:52:41:3c:53:36:0e:c2:e4:c9: 0b:4a:1c:c5:88:33:eb:9d:40:70:3e:4f:91:6c:c5: 5f:97:05:8f:69:2b:0c:a6:45:26:ae:09:5c:e3:44: a5:35:36:21:b2:f2:db:28:6c:6e:e6:af:07:2d:ce: 26:93:ac:6c:4e:ab:52:d1:e3:b7:6e:88:4e:d4:49: 14:7f:c0:15:49:9e:ce:3b:e3:e7:84:15:34:7f:3a: 06:5b:86:cb:cd:73:1b:57:e7:7c:fe:92:ea:43:a9: 94:60:13:26:91:f6:76:66:7b:19:48:f2:87:36:ec: 0f:27:57:8d:29:06:26:c3:18:84:65:0f:91:39:8f: ee:db:68:0c:ce:5e:be:bb:6e:f1:75:1a:bd:66:b6: 9b:08:b7:56:17:44:55:3e:21:11:3a:ba:06:5e:0b: e0:d6:75:fd:c0:45:8c:99:07:a8:9c:ec:77:c6:08: 6b:8a:e9:6d:ea:47:cd:b7:02:8e:04:be:e6:57:f1: b1:ab:7d:0b:d1:21:2a:b0:ef:19:74:4e:3e:ec:c5: 81:66:b5:0c:7c:b6:7f:09:bd:a2:dd:5b:8a:17:d5: c0:30:b5:e6:18:6b:a4:95:af:56:e4:35:52:38:09: dd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2F:A9:09:01:12:29:CE:DD:5A:2F:6D:F5:7D:5E:E6:63:65:2D:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.123.0/24 Signature Algorithm: sha256WithRSAEncryption c0:a0:f8:b4:0d:f1:cd:fe:88:be:5f:a1:f6:5c:b9:3c:89:59: 15:75:d3:aa:41:3a:dc:bc:a8:5b:1f:26:aa:83:fb:25:ed:f6: 2a:43:2d:cc:61:2d:42:59:b5:36:02:87:0e:20:8b:2a:50:ee: 76:99:c7:c7:46:b0:d5:58:f7:44:cb:96:d9:bf:5d:26:a6:de: c3:fa:6c:f3:cb:eb:10:5d:3d:30:9f:0d:08:b6:60:26:a3:e4: f0:cf:37:01:e5:9a:1c:7e:a4:2b:81:3c:39:ff:73:0e:63:fb: 8e:9d:14:40:b4:be:8f:96:5a:30:8c:10:e8:71:f7:1a:13:1c: bb:7a:1a:48:07:d2:55:cc:db:57:b1:5d:f5:40:b8:49:72:ae: ad:e1:c8:49:f5:ad:4a:eb:47:1e:7b:4b:04:cf:e0:5d:6d:5b: c0:3e:74:81:1a:f8:25:f5:93:e5:3c:9e:1c:23:23:f2:f6:4b: 2b:fd:2a:a0:43:3e:21:63:67:ed:91:72:90:a7:af:c6:25:18: 08:50:44:4b:dd:df:26:86:86:cb:32:67:86:f0:57:d6:78:a0: 38:f5:68:1c:2f:bf:3c:7c:af:64:f1:a8:18:9f:98:1b:ba:f7: 9f:26:b8:17:6a:99:0c:3c:45:5d:bd:e1:f1:c8:b6:e9:19:53: 1b:3e:23:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdsEnBA4Qqb+KLfUBP5gf1ggS800wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjdiMWM1NWQ1NjA2YTM5MTNkMTA0MmQ5ZjgwM2VhOGRi ZmFjZTUyODIzNTM3NzkzZDZiNzk5NzhlMzRkOGNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdpvhLtXsSzhpY2meYjElCNxcia1JBPFM2DsLkyQtKHMWI M+udQHA+T5FsxV+XBY9pKwymRSauCVzjRKU1NiGy8tsobG7mrwctziaTrGxOq1LR 47duiE7USRR/wBVJns474+eEFTR/OgZbhsvNcxtX53z+kupDqZRgEyaR9nZmexlI 8oc27A8nV40pBibDGIRlD5E5j+7baAzOXr67bvF1Gr1mtpsIt1YXRFU+IRE6ugZe C+DWdf3ARYyZB6ic7HfGCGuK6W3qR823Ao4EvuZX8bGrfQvRISqw7xl0Tj7sxYFm tQx8tn8JvaLdW4oX1cAwteYYa6SVr1bkNVI4Cd2lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3i+pCQESKc7dWi9t9X1e5mNlLUgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllYWUyMjM1LTg3MjMtNGE3MS1hNTI4LWQ2OTE5MjRjMjJlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HswDQYJKoZIhvcNAQELBQADggEBAMCg+LQN8c3+iL5fofZcuTyJWRV1 06pBOty8qFsfJqqD+yXt9ipDLcxhLUJZtTYChw4giypQ7naZx8dGsNVY90TLltm/ XSam3sP6bPPL6xBdPTCfDQi2YCaj5PDPNwHlmhx+pCuBPDn/cw5j+46dFEC0vo+W WjCMEOhx9xoTHLt6GkgH0lXM21exXfVAuElyrq3hyEn1rUrrRx57SwTP4F1tW8A+ dIEa+CX1k+U8nhwjI/L2Syv9KqBDPiFjZ+2RcpCnr8YlGAhQREvd3yaGhssyZ4bw V9Z4oDj1aBwvvzx8r2TxqBifmBu6958muBdqmQw8RV294fHItukZUxs+I2k= -----END CERTIFICATE-----Generated at Tue Apr 23 18:30:38 2024 by rpki-client on console-fra.rpki-client.org